Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c768f15e-576e-48c0-91d4-8446a6be70a8.roa
File: c768f15e-576e-48c0-91d4-8446a6be70a8.roa (raw, json)
Hash identifier: +AaZdltl0a6fbsZJPe+oxHBA66MXKOVxjS6vJrNITDo=
Subject key identifier: 4A:B4:E7:66:0E:25:9A:82:3A:55:2C:5D:AA:2C:81:20:52:53:B8:4E
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 7BBC0CC66A24C7DB03E05BD6C217AE3F9B659760
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c768f15e-576e-48c0-91d4-8446a6be70a8.roa
Signing time: Wed 05 Mar 2025 17:31:45 +0000
ROA not before: Wed 05 Mar 2025 17:31:45 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d032:e000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:bc:0c:c6:6a:24:c7:db:03:e0:5b:d6:c2:17:ae:3f:9b:65:97:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:31:45 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5d:97:45:a7:df:d5:95:70:3f:8e:34:ab:8b:
3b:38:a5:c9:ed:74:ff:e8:51:09:77:4f:75:8b:e1:
9b:16:ae:51:bb:2d:c9:c0:6f:7e:ee:1a:6f:d9:72:
d0:ee:aa:03:02:00:d1:10:6a:ad:71:1c:2a:11:8c:
b4:95:5f:fb:5f:8d:e6:8a:e6:68:5d:a5:76:da:77:
cd:a0:3d:ba:c6:88:4e:d8:70:c2:d9:2f:ee:ee:f1:
d9:a4:f7:af:cf:85:e1:67:3f:c1:d6:9f:52:21:2b:
c6:d6:25:2e:95:05:eb:5b:62:46:c1:ef:fa:7a:7a:
98:e7:64:1f:83:68:fd:67:60:50:55:ac:b0:95:74:
89:fa:18:15:f2:d6:7e:15:82:34:84:97:f2:86:f3:
5a:93:a8:b9:e8:e0:49:b1:94:76:d3:03:e1:cd:f4:
21:4d:d7:b2:9a:c3:97:55:b8:70:88:eb:c9:9f:29:
80:f5:44:69:a5:38:3b:5f:2c:88:48:8c:42:fe:50:
de:da:33:18:c2:85:e8:e9:34:7a:c5:ce:53:cd:5b:
75:48:0b:1d:37:8c:81:2a:51:94:09:37:f5:d2:8e:
5a:e0:34:ad:d6:ef:55:d3:15:5a:bd:a7:8c:c0:a7:
ac:fe:f2:c0:ca:cd:f7:dc:f3:0f:8f:8a:11:04:4a:
5a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:B4:E7:66:0E:25:9A:82:3A:55:2C:5D:AA:2C:81:20:52:53:B8:4E
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c768f15e-576e-48c0-91d4-8446a6be70a8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d032:e000::/40
Signature Algorithm: sha256WithRSAEncryption
3a:db:ed:46:c1:71:16:14:f8:a7:1a:f3:38:07:b9:66:f0:83:
7b:57:0b:fd:71:98:73:cf:be:83:53:0d:1e:f2:05:fc:0b:f5:
6d:8b:72:4f:06:a1:5f:d0:7e:bb:7c:2f:31:2d:3d:ad:bb:31:
c9:d8:8a:cb:21:16:51:ab:18:f1:b3:60:65:9d:3e:6c:bb:84:
64:98:e6:16:5f:b7:a1:da:2d:32:35:fc:14:43:f6:62:69:81:
91:c7:d5:4b:3b:bd:a3:a9:10:cf:4c:d4:db:cf:ca:b6:4d:7a:
50:12:f0:0d:6e:df:58:1d:dd:7a:1d:31:81:87:87:24:0a:cd:
bf:f4:9c:fb:2f:67:99:c6:b0:04:e6:51:55:5d:d4:bb:26:6e:
dc:9a:7e:93:b7:c4:39:40:67:20:0a:4c:ed:c6:d3:0b:ce:d2:
4e:fa:fb:91:bf:66:aa:06:49:0e:83:71:aa:d2:08:8e:e9:9a:
61:ae:0d:8f:dc:a5:c9:18:a9:82:6c:84:1d:f4:34:a1:ff:a3:
c3:01:bf:61:08:03:71:7d:a3:33:75:02:3a:3a:db:49:f0:03:
cc:18:73:1f:d3:c3:63:4c:3c:b6:bd:2b:0b:17:05:59:01:91:
ad:d0:22:23:aa:11:5f:58:0b:d7:f5:76:0b:74:4c:10:bf:f5:
49:ac:92:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:55 2025 by rpki-client